计算机工程与科学2018,Vol.40Issue(12):2156-2163,8.DOI:10.3969/j.issn.1007-130X.2018.12.009
基于信息流的多级动态可信度量模型
A multilevel dynamic trusted measurement model based on information flow
摘要
Abstract
System runtime environment and multiple external factors together with internal multi-entity information flow mutual interference can break system credibility, and result in unexpected outputs.Existing research mainly aims at the integrity measurement of entities under the initialized trusted hardware environment, failing to consider the trusted influence brought by the confidentiality, and the frequency of the trusted measurement of entities cannot be synchronized with the progress.We propose a multilevel dynamic trusted measurement model based on information flow theory.By using the basic idea of intransitive noninterference theory of information flow as reference and introducing a trusted proxy module, we design a multilevel security access control policy, hence the trusted measurement of entities can be measured dynamically from aspects of entity integrity and confidentiality.We describe the formal description and trusted proof of the model and verify the model through an abstract system example.Compared with existing research, it has a better real-time measurement performance, and it is a contextaware fine-grain trusted measurement model.关键词
可信度量/信息流/非传递无干扰/访问控制/形式化描述Key words
trusted measurement/information flow/intransitive noninterference/access control/formal description分类
信息技术与安全科学引用本文复制引用
迮恺,陈丹,庄毅..基于信息流的多级动态可信度量模型[J].计算机工程与科学,2018,40(12):2156-2163,8.基金项目
国家自然科学基金(61572253) (61572253)
"十三五"装备预研领域基金(61402420101HK02001) (61402420101HK02001)
航空科学基金(2016ZC52030) (2016ZC52030)
